This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/qgMkoT1JMEGlzQ-9amlEk3JLWC4.roa File: qgMkoT1JMEGlzQ-9amlEk3JLWC4.roa (raw, json) Hash identifier: y8/qKOIU/VnL+2E1k4DTDJCvpW8Lts5guxMB4ltkk0o= Subject key identifier: AA:03:24:A1:3D:49:30:41:A5:CD:0F:BD:6A:69:44:93:72:4B:58:2E Certificate issuer: /CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc Certificate serial: 019B7F1362AB0ABADB1AC9B9BCB0C6B75A91 Authority key identifier: D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/qgMkoT1JMEGlzQ-9amlEk3JLWC4.roa Signing time: Fri 02 Jan 2026 14:18:55 +0000 ROA not before: Fri 02 Jan 2026 14:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49440 IP address blocks: 2a0b:9700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.mft rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:62:ab:0a:ba:db:1a:c9:b9:bc:b0:c6:b7:5a:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d954ab94e4595194d2c39b1d3fe6a891f1eb92bc Validity Not Before: Jan 2 14:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aa0324a13d493041a5cd0fbd6a694493724b582e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4e:95:1a:1f:d2:b8:cc:3a:70:8c:ac:be:e4: da:e9:ff:46:66:dd:e2:52:9f:3e:3c:05:99:33:22: 97:77:cb:a5:fc:9b:f0:fe:46:9c:08:37:b6:88:b6: d8:06:53:22:0f:f8:d6:6c:7a:9d:47:dd:10:47:14: 68:2d:4d:b9:b8:c1:0e:d7:3e:3c:0c:61:cc:6e:0f: 43:cf:da:5a:d0:9c:13:49:33:a5:22:11:11:21:b9: 45:29:3a:b5:7a:8b:54:2d:a7:aa:1a:dd:d6:ec:68: 37:5f:e2:49:88:50:95:ce:df:55:ed:10:0f:06:74: b2:3e:1e:28:d1:51:83:33:c8:b8:f4:c5:ee:e5:f8: 62:19:ba:d9:54:3c:e2:4f:96:81:fd:02:f9:eb:c8: 63:90:38:5d:a9:ee:c1:24:33:6d:de:7a:bf:cb:72: 81:61:eb:ec:58:eb:5b:60:66:48:18:61:ab:b9:30: b5:a5:8b:c8:aa:ba:f9:ab:b2:23:08:fe:37:24:b9: f9:c7:e5:f0:06:b5:58:d9:a0:78:63:d4:6e:28:be: 2c:4f:e7:fb:d9:29:fe:ff:28:ae:8f:e8:14:61:d1: 0d:58:0c:d0:e5:c0:3f:ab:a0:23:40:16:08:07:90: e1:ab:6e:47:97:cb:08:f1:ae:b9:d9:fd:23:7d:48: 1e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:03:24:A1:3D:49:30:41:A5:CD:0F:BD:6A:69:44:93:72:4B:58:2E X509v3 Authority Key Identifier: keyid:D9:54:AB:94:E4:59:51:94:D2:C3:9B:1D:3F:E6:A8:91:F1:EB:92:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2VSrlORZUZTSw5sdP-aokfHrkrw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/qgMkoT1JMEGlzQ-9amlEk3JLWC4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/647485-635e-4ac6-b0b9-3351c577b432/1/2VSrlORZUZTSw5sdP-aokfHrkrw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:9700::/32 Signature Algorithm: sha256WithRSAEncryption af:25:41:86:98:35:b6:39:10:4b:87:9e:0d:ca:80:36:6a:18: 2a:86:13:96:d8:5c:55:e8:84:6d:14:82:05:16:44:c9:b6:66: 93:4a:1d:7b:e2:6f:d5:79:52:54:9c:f5:25:59:de:1c:58:9a: d5:5a:9d:d6:5f:36:71:66:59:b7:05:a0:0d:5e:17:b1:ae:35: 67:3b:fa:59:21:e4:b1:0e:dc:55:1b:28:9b:02:74:63:de:90: 88:a9:06:7c:43:e5:ea:e7:58:17:83:c0:0e:ae:5d:58:b8:6e: 8a:28:03:59:f9:f3:36:cd:7a:3d:08:9a:93:c2:d0:80:38:0a: fc:c4:06:89:0f:b4:ee:7a:23:a0:72:e7:93:5a:6e:02:64:ce: 9c:b3:93:48:3e:46:0e:b3:46:f6:cc:7c:1c:c3:c7:55:8f:00: 5a:ee:e7:97:d4:3d:eb:4e:59:67:7f:28:e8:0f:2f:75:ff:b4: a7:6f:94:86:2d:03:48:dc:d6:fa:3b:6c:a8:db:24:6f:1e:3a: 9c:99:ec:35:ac:91:29:19:93:04:f4:f7:e7:b8:55:73:95:a3: dc:74:5f:79:7f:7b:ac:94:1e:ac:56:58:c8:a2:f8:42:f0:86: fd:4b:3c:3f:1e:05:b3:b4:88:99:90:f9:ba:b2:80:ee:31:e9: 58:fc:7f:63 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt/E2KrCrrbGsm5vLDGt1qRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5NTRhYjk0ZTQ1OTUxOTRkMmMzOWIxZDNmZTZhODkxZjFl YjkyYmMwHhcNMjYwMTAyMTQxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYTAzMjRhMTNkNDkzMDQxYTVjZDBmYmQ2YTY5NDQ5MzcyNGI1ODJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq06VGh/SuMw6cIysvuTa6f9GZt3i Up8+PAWZMyKXd8ul/Jvw/kacCDe2iLbYBlMiD/jWbHqdR90QRxRoLU25uMEO1z48 DGHMbg9Dz9pa0JwTSTOlIhERIblFKTq1eotULaeqGt3W7Gg3X+JJiFCVzt9V7RAP BnSyPh4o0VGDM8i49MXu5fhiGbrZVDziT5aB/QL568hjkDhdqe7BJDNt3nq/y3KB YevsWOtbYGZIGGGruTC1pYvIqrr5q7IjCP43JLn5x+XwBrVY2aB4Y9RuKL4sT+f7 2Sn+/yiuj+gUYdENWAzQ5cA/q6AjQBYIB5Dhq25Hl8sI8a652f0jfUgeZQIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFKoDJKE9STBBpc0PvWppRJNyS1guMB8GA1UdIwQY MBaAFNlUq5TkWVGU0sObHT/mqJHx65K8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlZTcmxPUlpVWlRTdzVzZFAtYW9rZkhya3J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC82NDc0ODUtNjM1ZS00YWM2LWIwYjkt MzM1MWM1NzdiNDMyLzEvcWdNa29UMUpNRUdselEtOWFtbEVrM0pMV0M0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC82NDc0ODUtNjM1ZS00YWM2LWIwYjktMzM1MWM1NzdiNDMy LzEvMlZTcmxPUlpVWlRTdzVzZFAtYW9rZkhya3J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKguXADAN BgkqhkiG9w0BAQsFAAOCAQEAryVBhpg1tjkQS4eeDcqANmoYKoYTlthcVeiEbRSC BRZEybZmk0ode+Jv1XlSVJz1JVneHFia1Vqd1l82cWZZtwWgDV4Xsa41Zzv6WSHk sQ7cVRsomwJ0Y96QiKkGfEPl6udYF4PADq5dWLhuiigDWfnzNs16PQiak8LQgDgK /MQGiQ+07nojoHLnk1puAmTOnLOTSD5GDrNG9sx8HMPHVY8AWu7nl9Q9605ZZ38o 6A8vdf+0p2+Uhi0DSNzW+jtsqNskbx46nJnsNayRKRmTBPT357hVc5Wj3HRfeX97 rJQerFZYyKL4QvCG/Us8Px4Fs7SImZD5urKA7jHpWPx/Yw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:27:39 2026 by rpki-client